CVE-2024-42845 - CERT CVE
ID CVE-2024-42845
Sažetak An eval Injection vulnerability in the component invesalius/reader/dicom.py of InVesalius 3.1.99991 through 3.1.99998 allows attackers to execute arbitrary code via loading a crafted DICOM file.
Reference
CVSS
Base: 8.0
Impact: 5.9
Exploitability:2.1
Pristup
VektorSloženostAutentikacija
NETWORK LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH HIGH
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Zadnje važnije ažuriranje 13-02-2026 - 17:16
Objavljeno 23-08-2024 - 19:15